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[OBJECT] 

The IC card which can change access 
conditions while ensuring security is provided. 



[SUMMARY OF THE INVENTION] 

The security status 31 maintains the 
comparison result of a key, and the first security 
attribute 44 stores the access conditions for 
reading a data file 46. 

From the exterior, when there is a 
modification command of this access condition, 
the security attribute modification part 23 judges 
whether the access conditions stored by the 
security attribute 44 are fulfilled by the security 
status 31. Only when satisfied, this access 
condition is changed. 

Read-out of this or later and the data file 46 is 
performed under the changed access 
conditions. 
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1. ICcard 

2. Process control part 

21. Command receiver section 

22. Key comparison part 

23. Security attribute storage part 

24. File access part 

31. Security status 



41. Machine key 

42. Password 

43. Terminal key 

44. Insecurity attribute 
45 2nd security attribute 
46. Data file 



[CLAIMS] 



[CLAIM 1] 
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Memory and security attribute storage part 
which stores the access conditions performing 
the approval of the access with respect to the 
above-mentioned memory. Updating means 
update the above-mentioned access conditions 
with external directions. Control means perform 
updating of the above-mentioned access 
conditions by above-mentioned updating means 
an approval or prohibition. The IC card provided 
with the above. 

[CLAIM 2] 

Controls means perform the approval of the 
updating of the above-mentioned access 
conditions, only when the access conditions 
stored by that security attribute storage part are 
fulfilled. 

An IC card of Claim 1 characterized by the 
above-mentioned. 

[CLAIM 3] 

It has several security attribute storage part 
corresponded in the variety of external access. 

Control means performs the approval of the 
updating of the above-mentioned access 
conditions, only when the access conditions 
stored by these security attribute storage part 
are fulfilled. 

An IC card of Claim 1 characterized by the 
above-mentioned. 



[DETAILED DESCRIPTION OF INVENTION] 
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[INDUSTRIAL APPLICATION] 

This invention relates to the IC card which 
performs access control with respect to the file 
incorporated using comparison information on a 
key. 
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[PRIOR ART] 

Since the IC card has process control means, 
such as CPU, it precedes accessing that file for 
every file incorporated by the IC card, and sets 
up information about the key for which 
comparison is needed. 

This can perform access control with respect 
to a file. 

Information about this key is called access 
conditions. 



[0003] 

Since the conventional IC card was using 
EPROM as a data memory in the old days, this 
access condition was fixation. 

Moreover, even when recent years are and 
EEPROM came to be used as a data memory, 
the viewpoint of security to access conditions 
were fixation. 
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[PROBLEM ADDRESSED] 

With such conventional constitution, on the use 
of an IC card system, when the situation of 
wanting changing access conditions generated, 
it was not able to correspond in this. 

Moreover, for example, as access conditions 
of a certain file, the case that an IC card 
possessor's password is set up (that is, when 
having set up if IC card possessor's password 
needs to be compared before it, in order to 
access that file). The IC card possessor had to 
input password. 

It is convenient if the IC card possessor itself 
can switch over freely the 
essential/needlessness of password input. 

However, this was not made in the 
conventional IC card. 
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[0005] 

This invention is for solving such a conventional 
problem. 

It aims at providing the IC card which can 
change access conditions while ensuring 
security. 
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[SOLUTION OF THE INVENTION] 

In order that it attains the objective of an above, 
the IC card of this invention provides a memory, 
the security attribute storage part which store 
the access conditions performing the approval 
of the access with respect to the above- 
mentioned memory, updating means update the 
above-mentioned access conditions with 
external directions, and control means which 
perform the updating of the above-mentioned 
access conditions by above-mentioned 
updating means an approval or prohibition. 
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Wm [EFFECT] 

w (DfSfifcC: <fc <9 , TV -fc?>3zW Modification of access conditions is possible by 

J^H^s^ft^ WfA this constitution. 

* f , ft^-^Mfr p, />s It can correspond in various demands from a 

% - it rf -tl *- > as -t t % system side or a user side. 

JKk-^JkT o - £ B J St i: «£ Moreover, in order to change some access 

•So £fc> 7^ conditions, it is necessary to fulfill the access 

-5 7c w©3£H8(r conditions before this modification. 

<DT ?±x£iflr$:MtcLX\/^& Security is ensured. 
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[Example] 

(Example 1)) Hereafter, it explains, referring 
drawing about the first example of this 
invention. 



[0 0 0 9] 

m l ittMMW<o I Oj— K© 

mrfmx'h*). i ctj- ki f* 

WM2 > R AM 3 <h „ m 
M^l-#mx.^ "Tie^E E P R 

OM4-?flWc$;fc,5„ BySfflflP 

[0 0 10] 

EEPROM4l4f-^77^ 



[0009] 

Fig. 1 is a block diagram of the IC card of this 
example. 

IC card 1 consists of a process control part 2, 
and RAM 3 and EEPROM 4 which can be 
rewritten electrically. 

Process control part 2, the process block 
realized by the program has described. 

About these contents of a process, it 
mentions later. 



[0010] 

EEPROM 4 has the data file 46. 

This data file 46 is accessed with a command 
from the exterior via the command receiver 
section 21 and the file access part 24. 



[0011 

% 1 <Dir^ 

4 2 <Dm& 



] 

3-!)T'f JStt 441: 
7X^4 6 iCfcH" 
-^Ki* (0>J;ttf7 

-^77'f/l'4 6 © 

IB l (D^-ry 



[0011] 

The access conditions with respect to the first 
command group (for example, read-out of a file) 
with respect to a data file 46 are set to the first 
security attribute 44. 

In this example, in order to execute first 
command groups, such as read-out of a data 
file 46, it shall be set up that "comparison of the 
password 42 is necessity". 
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[0012] 

Similarly, the access conditions with respect to 
the 2nd command group (for example, write of a 
file) with respect to a data file 46 are set to the 
2nd security attribute 45. 

In this example, in order to execute 2nd 
command groups, such as the write of a data 
file 46, it shall be set up that "comparison of the 
issue person key 41 is necessity". 



[0013] 

When the security attributes 44 and 45 are set 
up in this way, if using this IC card by the 
application accompanied by a read-out process 
of a data file 46, an IC card possessor has to 
input password. 

In many applications, it is necessary to 
perform the switching of the 
essential/needlessness of password input of an 
IC card possessor free depending on the 
degree of secrecy of the data currently written in 
the data file 46. 
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[0014] 

When he wants to make input of password 42 
unnecessary now, the IC card possessor 
performs the predetermined operation for 
releasing password (not illustrated) with the 
apparatus. The portable terminal, etc. which are 
installed in the specific place. 

Input of password is included in this 
predetermined operation in order to ensure 
security. 
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A terminal etc. recognized the input password 
as a data and send the key comparison 
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command to IC card 

The command receiver section 21 received 
interprets that it is a key comparison command. 

A control is moved to the key comparison part 
22. 
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[0016] 

The key comparison part 22 compares the input 
password and password 42 stored by 
EEPROM4. When corresponding, the 
"password writes information of comparison 
which was completed" in the security status 31 . 

Since this information is written in RAM3, it is 
temporary information extinguished if the power 
supply to IC card 1 is cut. 
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[0017] 

Next the above-mentioned terminal etc. 

the security attribute modification 
command which commands releasing of 
password to IC card 1 . 
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[0019] 

In order to ensure security, the security attribute 
modification part 23 is controlled to be able to 
perform modification of this condition, only 
when the conditions set as the first security 
attribute 44 are fulfilled. 
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At this example, since it is set up that 
"comparison of the password 42 is necessity" to 
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the first security attribute 44 as above- 
mentioned. In order to execute this command, it 
is necessary to compare password 42. 

That is, it updates that is set up "comparison 
of the password 42 is necessity". Therefore, it 
becomes a requisite for that to compare 
password 42 beforehand. 
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[0021] 

Thus, in order to change a certain security 
attribute, security is ensured by making to fulfill 
the conditions before modification set as that 
security attribute into a requisite. 
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[0022] 

In order to control an above, the security 
attributes modification part 23 checks 
information currently written to the security 
status 31 . 

Since information that "password comparison 
was completed" is written in the security status 
31, the approval of the execution of a security 
attribute modification command which received 
is performed. 

The security attribute modification part 23 
writes information "comparison of password 42 
is unnecessary" in the first security attribute 44. 

Since it stores this information in EEPROM 4, 
Even when the power supply with respect to IC 
card 1 cuts, it maintains. 

Thus, when using this IC card by the 
application accompanied by a read-out process 
of a data file 46 henceforth, it becomes 
unnecessary that an IC card possessor inputs 
password. 
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[0023] 

Conversely, it is similar when re-setting up so 
that input of password 42 may be needed in 
order to read a data file 46. 

However, since it is set as the first security 
attribute 44 with "comparison of password is not 
necessary" in this case password does not 
need to be input in order to perform this 
modification process. 



[0024] 

According to this example in this way, when a 
certain security attribute is changed, it is 
required to satisfy the access conditions of that 
security attribute. 

Therefore, a security attribute can be changed. 
While maintaining security. 



[0025] 

(Example 2) As the 2nd example of this 
invention, the case where a system is expanded 
so that apparatuses except for an issue 
machine (for example, POS terminal of a store 
etc.) can perform the write-in process to a data 
file 46 is considered. 
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[0026] 

As mentioned above, it is set up that 
"comparison of the issue machine key is 
necessity" to the 2nd security attribute 45 as the 
access conditions with respect to the write to a 
data file 46. Therefore, it is the method of 
registering an issue machine key into POS 
terminal of each store. 

However, an issue machine key is a key of 
the almighty which can also obtain authorities 
except for the write-in process to a data file 46, 
for example, rewriting of password etc., often in 
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fact. It is not preferable to put such a key on 
POS terminal on security. 



[0027] 

Consequently, apart from an issue machine key, 
the terminal key 43 is set as IC card 1 and POS 
terminal. 

By comparing this terminal key 43, it is 
preferable that the write to a data file 46 is made 
to be made. 

For this reason, the 2nd security attribute 45, 
it is necessary to update "comparison of an 
issue machine key is necessity" to "comparison 
of an issue machine key or a terminal key is 
necessity". 
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needed as a first example, security is ensured. 
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[0029] 

In the above example, security is ensured by 
making to fulfill the conditions before 
modification set as that security attribute, in 
order to change a certain security attribute into 
a requisite. 

However, this invention is not a limited thing 
at this. 



[0030] 

For example, in order to change a certain 
security attribute, comparison of the key of a 
higher-order is needed. 
It is fine even if it stores that condition in 
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another field in EEPROM 4. 
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[EFFECT OF THE INVENTION] 

As mentioned above, according to this 
invention, as long as the access conditions 
stored by the security attribute are fulfilled. 
Control means which performs the approval of 
the updating of this access condition is had and 
made composition. Thereby, access conditions 
can be changed, ensuring security. 
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[FIGURE 1] 

The block diagram of the IC card in the first 
example of this invention 
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21 . Command receiver section 

22. Key comparison part 

23. Security attribute storage part 
24: File access part 

31. Security status 

41. Machine key 

42. Password 

43. Terminal key 

44. 1 st security attribute 
45 2nd security attribute 
46. Data file 
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K«*i.38frarffi=flrEEPROM4Tfll*Sft4. jtlfflM 
fiHg|52{iro^7A(;j; 9S^S*iS«!S7'n-y ?TfE 

[00 10] EEPR0M4lif-^77'f/l'4 6£1f 
l/O^S. Mf-;7r'(M6ll 3-?yFSftSB 
2 1t$J:tf7T-f/U77-fcX**2 4£fl'l/C. jWH*>^> 

[00 11] &lco-k* 3.07-4 Stt44(C«i. -f-? 
77-4A-4 6t*ffS^lorj^yh'S (0Utf7r-r 

y KBtHtf^ifeftCtt, r BfiiE#^4 2 »JH^jW& 

[0012] HttfC. m2c7)-fedfaU7 i ^Jatt4 5(w 
tt, r-^7r-f^4 6tJttl.m2<03-?y HP (gill 

**0tWCtt. f*-^7T^/U4 6««i**« 

[00 1 3] ^<7)J:3H-fe d fa. l Jr-fStt4 4, 4 5* J 
RSS<iTV^*«^. r-^7r^/M6^ISajL«lS 
$•# 5 77* U a y-C* I C ij- F Sr^ffl-f I.B#. 

i cii-Ynmi\tmm&^*\^t£^mi:t> 
/u4 6(c«§aiiixTv^7 r -^^ti^mcjEi:'r, i 

[ 0 0 1 4 ] 4-. BgE#^4 20A*t^Bt Lfe^ 
fir. ICj&-FBH*t(4. «f*€0<WrtSaS*iTV^4 



(3 

3 

^fi'Jf < HMEtt^A***** it 

4. 

[0015] 4-rA*3itfci«a»^*T 

4. 3WF»l«2itt, SHUra-evl^HH 
^nvyKTfcSifcfcJWRU *-«ite»2 2fcW» 

[0016] Jf- ra^gp 2 2 JiA* $ flfc«a## t . 10 
EEPR0M4OSIrt$ft4l«IiE#^4 2££Jt®U 

M 3 rtH^^S I C H 1 ^IKStfUJitft 
fcffl**ft-HW*flHST*ft. 

[0017] mzmzm*®.m±. « m.m<»mm 

f&Gi-ft-fc* a 'J r 4 att^Mavy F£ I C#- F 1 

[0 0 18] 3vyKgfiat2 l(i. gftLfcn-vyF 
#-fe*Ayr*MBS3-?yF?aiii*»rcu 20 
-fejf jl Ut -f JStt^HS? 2 3 teW»*»-* . 

[00 19] -fe^a'Jr-f £««Wftfc*>. -feJfayf 

^Bte£jS&2 3{i. J|ll<0-fe*ayf-.flMx4 4fctt 
j&&*iT^ft^tf#fcSfi'0>ft**fc:IK'J. 
#OjaE**rttfc &4 J: 3 MOT* . 

[0020] *H»JT1i, SI 1 i'JT< £1144 
4 £(i1!fi£oa 0 . r BgfiE#^4 2 «B&£aWB j ' hi£ 
£Sivo*ftfc«>. *3vyFfc|Sfr1-*fctf>fc:li. VI 

*>. r BflE#-t4 20®&*^j i:Rj£S*lTHftfc 30 

#t4 2 £SB£ L r tJ < Z t tf£§Ukt¥ b &4 . 

[0021] znxitz* bi±**v?4m&&im 

[0022] ±IB<ttW**fir 3 fctf>tc-te * a 'J r -( Xtt 
£jgg?2 3(i. •bJf-a'JT'f lfc#WlT 

fc« r *iE#^a«!tte8F*j fcV*3flHfcWM&*iiT 40 
nftfcft. SteUfc-fe^ayr-fMHSeavyFOje 

T4*tt4 4(C**atr. ^^Wfg(iEE PROM 41*1 
fcEtt3*lftfctf>. ICj&-Fl(C« , **«*0 t flMlT 

4 6ottfflL«ffl^ff drry^-^s >"C*i c*- 

[0 0 2 3]»fc. r-*7r>f/U4 6fcK»iM-fc» 50 



&IPPP6-3 095 28 

4 

fci«E#*4 2*>A*aKs&Ki:'Sr« J: 3 SfS£ Lftfc-f 
BM>R»7*ft. fc£U If51«6-b:*al/ 

[0 0 24] i«J:3K*ldt0!fcJ:Wf. &4-te3fa 

ur-fBttesaB't**^. -eco-b^a'jf-fatt^r 

**'Jf-ftfilftL4^^a!JT< Xtt*S3fft ft 
^fci^fcfcft. 

[0025] < shot 2 ) wm^M2 nmmmt l 

T. T-^7r-f;U4 6^#j2 ! ^S^fi : ^WhO 
fllS (Mitf«JB^)POS«5|PSrif) Tfli.ftJ:3i'.x 
TA£j£$g-f4i§£$r#;t4. 
[0 0 26]fl34U:J:3fc, f-^7T'f/W6M0 
«a»t*H"4r^-feXjftfrfc Lt\ S$2*>-fe**yr 

v>ftfc», #SC«POSJB*K:JBff«^— tfifttS 

r A IV 4 6 ^«0«ji*5!HtW<7) . mi. Jf BfiE#^» 
8U^<7)M£ bfeft i t ft£IB«)*--C*ft £ 
fctflK. i«J:3*df-*pos)|*ca<Ci:tt-b 
*ay^_L#*L<fcn. 

[0027] *,IT\ »fT^-fctt*J(C«**-4 3 
fcIC*-KlfcJ:tfPOSii*fc:R}eU 

-43$r^-f4ClttJ:0. t-^7t^M6^ 

»2©***yf-fatt4 5tt. r ^ff«^-c7) 

[0028] *H»JtiJV^T . SS 1 OHJSMi: |B]« 

[0029] liLh^Sfi^tli, J>4-b^a 'Jr -fJBtt 

^ttciot-fedfayr-f £5lffiLT^4tfs 

[ 0 0 3 0 ] mm. *4Hr*ayf*Htt£S3ef6 

R O M 4 I*|^ijc07 H fclStt-f 4 tLXlXW 
[0031 ] 

T<mmzfemixx^z>7?*x%tt-ti i ffiKZiix^ 

mZGi-Z>®f8.ktZ>Ztlzi;<0 . a Or < Sr5l 
^ L$r0<4> 77 •fe**tt£S3ft ft £ t soffit *ft . 

[HI] 1 *MWfcWt*J»tft I C X?- HOfll 

^0 
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